IT 4510 : Ethical Hacking
Squid and Dansguardian
Dr Joe Francom
SQUID
- Rather large config file
- Blacklist or Whitelist all
- Insert your rules where it says “INSERT”
- Access list rules are checked in the order they are written. List searching terminates as soon as one of the rules is a match.
SQUID
- http_access allow localnet (set your localnet to lock things down so that only your hosts would be able to access, also allow from localhost)
- Ordering of rules matter
SQUID acl synopsis
- url_regex can match url (just looks at url, not path)
- time
- acl badtime time MTF 12:00-14:00
- dstdomain
- urlpath_regex can match part of path
Dansguardian